Falhas do tipo CWE-200
3.929 resultadosCVE-2024-39335CRITICALSupported versions of Mahara 24.04 before 24.04.1 and 23.04 before 23.04.6 are vulnerable to information being disclosed to an institution aEPSS 0.3%CVE-2024-7060LOWExposure of Sensitive Information to an Unauthorized Actor in GitLabEPSS 0.3%CVE-2026-32099MEDIUMDiscourse prevents hidden profile data leak via user oneboxEPSS 0.3%CVE-2025-20129MEDIUMCisco Customer Collaboration Platform Information Disclosure VulnerabilityEPSS 0.3%CVE-2024-37180MEDIUM[CVE-2024-37180] Information Disclosure vulnerability in SAP NetWeaver Application Server for ABAP and ABAP PlatformEPSS 0.3%CVE-2024-9945MEDIUMLimited Information Disclosure in GoAnywhere MFT Prior to 7.7.0EPSS 0.3%CVE-2026-28976HIGHAn information leakage was addressed with additional validation. This issue is fixed in macOS Tahoe 26.5. An app may be able to gain root prEPSS 0.3%CVE-2020-13179—Broker Protocol messages in Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows prior to 20.04.1 are not cleaned up in EPSS 0.3%CVE-2025-29992HIGHMahara before 24.04.9 exposes database connection information if the database becomes unreachable, e.g., due to the database server being teEPSS 0.3%CVE-2026-56214HIGHCapgo - Unauthenticated Organization Enumeration and Billing Status Disclosure via Supabase RPCEPSS 0.3%CVE-2026-5666MEDIUMcode-projects Online FIR System SQL Database Backup File complaints.sql sensitive informationEPSS 0.3%CVE-2023-0597MEDIUMA flaw possibility of memory leak in the Linux kernel cpu_entry_area mapping of X86 CPU data to memory was found in the way user can guess lEPSS 0.3%CVE-2026-3131MEDIUMImproper
access control in multiple DVLS REST API endpoints in Devolutions
Server 2025.3.14.0 and earlier allows an authenticated user witEPSS 0.3%CVE-2026-2696MEDIUMExport All URLs < 5.1 - Unauthenticated Sensitive Data ExposureEPSS 0.3%CVE-2020-1987LOWGlobal Protect Agent: VPN cookie local information disclosureEPSS 0.3%CVE-2024-41723MEDIUMBIG-IP iControl REST vulnerabilityEPSS 0.3%CVE-2025-66625MEDIUMUmbraco Vulnerable to Improper File Access and Credential Exposure through Dictionary Import FunctionalityEPSS 0.3%CVE-2026-42456MEDIUMAnythingLLM: Cross-User TTS Audio Disclosure via Chat ID (IDOR)EPSS 0.3%CVE-2023-46741MEDIUMCubeFS leaks magic secret key when starting Blobstore access serviceEPSS 0.3%CVE-2022-39210LOWAccess to internal files of the Nextcloud Android appEPSS 0.3%